Only the latest release of PostalCode2NUTS receives security updates.
| Version | Supported |
|---|---|
| Latest | Yes |
| Older | No |
If you discover a security vulnerability, please report it through GitHub's private vulnerability reporting. Do not open a public issue for security vulnerabilities.
Please include:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
Reports will be acknowledged on a best-effort basis. Once a fix is developed and released, the vulnerability will be disclosed publicly through a GitHub security advisory.
This project runs automated security checks on every push via CI:
- pip-audit — scans dependencies for known vulnerabilities
- Bandit — static analysis for common security issues in Python code